CNNVD-202510-1174 Information
CNNVD ID
CNNVD-202510-1174
Related CVE
- CNNVD Published: 2025-10-08
Description (Chinese)
TOTOLINK N600R是中国吉翁电子(TOTOLINK)公司的一款无线路由器。 TOTOLINK N600R 4.3.0cu.7866_B20220506及之前版本存在安全漏洞,该漏洞源于对文件/cgi-bin/cstecgi.cgi中参数wepkey的错误操作,可能导致缓冲区溢出。
Description (English)
TOTOLINK N600R is a wireless router of the Chinese company TOTOLINK. There is a security loophole in TOTOLINK N600R 4.3.0cu.7866 B2020506 and earlier versions, which stems from the mishandling of the parameter wepkey in document/cgi-bin/cstecgi.cgi, which could lead to a spill out of the buffer zone.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
吉翁电子
Published
2025-10-08
Last Modified
2026-02-24
References
https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/TOTOLINK/wepkey/wepkey.md https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/TOTOLINK/wepkey/wepkey.md#reproduce https://vuldb.com/?ctiid.327381 https://vuldb.com/?id.327381 https://vuldb.com/?submit.666915 https://www.totolink.net/
Share on: